Content deleted Content added
No edit summary Tag: Reverted |
Becky Sayles (talk | contribs) m Reverted edits by Awaisstd (talk): using Wikipedia for advertising/promotion (HG) (3.4.10) |
||
Line 2:
{{Security protocol}}
The '''Domain Name System Security Extensions''' ('''DNSSEC''') are a suite of [[Extension Mechanisms for DNS|extension]] specifications by the [[Internet Engineering Task Force]] (IETF) for securing data exchanged in the [[Domain Name System]] ([[DNS hijacking|DNS]]) in [[Internet Protocol]] ([[IPv6|IP]]) [[Networks and States|networks]]. The protocol provides [[message authentication|cryptographic authentication]] of data, [[SOCKS|authenticated]] denial of existence, and data [[integrity]], but not availability or [[Confidentiality agreement|confidentiality]].
==Overview==
The original design of the Domain Name System did not include any security features. It was conceived only as a scalable distributed system. The Domain Name System Security Extensions (DNSSEC) attempt to add security, while maintaining [[backward compatibility]]. {{IETF RFC|3833}} of 2004 documents some of the known threats to the DNS, and their solutions in DNSSEC.
|